Over the past few years major crimeware, ransomware and malware campaigns have moved to fileless - playing upon features built directly into popular word processing and document rendering applications, email clients, and functionalities of the Operating System itself as a means to attack and spread. During this session you will learn more about:

- How these common in-place applications are abused to initiate or further attacks

- How techniques such as these can lead to malware/ransomware bypassing AV

- Strategies for re-evaluating your endpoint security tools

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.

Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.